快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352871
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-64447 |
A reliance on cookies without validation and integrity checking vulnerability in Fortinet FortiWeb 8...
|
HIGH | 7.1 | 2025-12-09 |
Fortinet FortiWeb
fortinet fortiweb
|
CVE NVD | |
| CVE-2025-12946 |
Improper input validation in NETGEAR Nighthawk routers
|
MEDIUM | 4.4 | 2025-12-09 |
NETGEAR RS700
NETGEAR RAX54Sv2
+33个
|
CVE NVD | |
| CVE-2025-12945 |
Improper input validation in NETGEAR Nighthawk router R7000P
|
LOW | 1.1 | 2025-12-09 |
NETGEAR R7000P
netgear r7000p_firmware
|
CVE NVD | |
| CVE-2025-12941 |
Denial of Service Vulnerability in NETGEAR C6220 and C6230
|
MEDIUM | 5.0 | 2025-12-09 |
NETGEAR C6220
NETGEAR C6230
+2个
|
CVE NVD | |
| CVE-2023-22675 |
WordPress WP Fast Cache plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 4.3 | 2025-12-09 |
Taylor Hawkes WP Fast Cache
|
CVE NVD | |
| CVE-2023-23729 |
WordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Contributor+ reCAPTCHA Settings Change Vulnerability
|
MEDIUM | 5.4 | 2025-12-09 |
Brainstorm Force Spectra
|
CVE NVD | |
| CVE-2025-13662 |
Improper verification of cryptographic signatures in the patch management component of Ivanti Endpoi...
|
HIGH | 7.8 | 2025-12-09 |
Ivanti Endpoint Manager
ivanti endpoint_manager
+1个
|
CVE NVD | |
| CVE-2025-13661 |
Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticate...
|
HIGH | 7.1 | 2025-12-09 |
Ivanti Endpoint Manager
ivanti endpoint_manager
+1个
|
CVE NVD | |
| CVE-2025-13659 |
Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2...
|
HIGH | 8.8 | 2025-12-09 |
Ivanti Endpoint Manager
ivanti endpoint_manager
+1个
|
CVE NVD | |
| CVE-2025-9638 |
i-Educar 安全漏洞
|
MEDIUM | 4.8 | 2025-12-09 |
Portabilis i-Educar
portabilis i-educar
|
CVE NVD +1 | |
| CVE-2025-5469 |
Dylib Hijacking in Yandex Messenger
|
HIGH | 7.3 | 2025-12-09 |
Yandex Messenger
|
CVE NVD | |
| CVE-2025-10573 |
Stored XSS in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated ...
|
CRITICAL | 9.6 | 2025-12-09 |
Ivanti Endpoint Manager
ivanti endpoint_manager
+1个
|
CVE NVD | |
| CVE-2025-5471 |
Dylib Hijacking in Yandex Telemost
|
HIGH | 7.3 | 2025-12-09 |
Yandex Telemost
|
CVE NVD | |
| CVE-2025-5470 |
Dylib Hijacking in Yandex Disk
|
HIGH | 7.3 | 2025-12-09 |
Yandex Disk
|
CVE NVD | |
| CVE-2025-13642 |
ProfilePress <= 4.16.7 - Authenticated (Subscriber+) Arbitrary Shortcode Execution
|
MEDIUM | 5.4 | 2025-12-09 |
properfraction Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress
|
CVE NVD | |
| CVE-2025-67467 |
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 4.5 | 2025-12-09 |
StellarWP GiveWP
|
CVE NVD | |
| CVE-2025-66533 |
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocde Execution vulnerability
|
HIGH | 7.8 | 2025-12-09 |
StellarWP GiveWP
|
CVE NVD | |
| CVE-2025-2296 |
EDK2 安全漏洞
|
HIGH | 8.4 | 2025-12-09 |
TianoCore EDK2
|
CVE NVD +1 | |
| CVE-2025-14345 |
Cross-Shard Failovers May Lead to Partial Transaction Commit in MongoDB Server
|
LOW | 2.3 | 2025-12-09 |
MongoDB Inc. MongoDB Server
mongodb mongodb
+1个
|
CVE NVD | |
| CVE-2024-38798 |
Uncleared password keystrokes in circular queue can lead to information disclosure or escalation of privilege
|
MEDIUM | 5.8 | 2025-12-09 |
TianoCore EDK2
|
CVE NVD |